McAfee HARDWARE 1.4 Guide d'installation télécharger pdf (Page 35)

McAfee Email Gateway

Security Target

McAfee Incorporated

Page 35 of 61

This family is added to the class FIA, and combines aspects of the existing CC families FIA_UID and

FIA_UAU.

Component levelling

FIA_UIA_EXT.1 allows for specification of a limited set of actions to be permitted before a user is

identified and authenticated.

Management: FIA_UIA_EXT.1

The following actions could be considered for the management functions in FMT:

a) Management of the user identities;

b) Management of the authentication data by an administrator;

c) Management of the authentication data by the associated user;

b) If an authorised administrator can change the actions allowed before identification and

authentication, the managing of the action lists.

Audit: FIA_UIA_EXT.1

The following actions should be auditable if FAU_GEN Security audit data generation is included in the

PP/ST:

a) Minimal: Unsuccessful use of the authentication mechanism;

b) Basic: All use of the authentication mechanism;

c) Detailed: All TSF mediated actions performed before identification and authentication of the user.

FIA_UIA_EXT.1 User identification and authentication

Hierarchical to: No other components

Dependencies: No dependencies

FIA_UIA_EXT.1.1 The TSF shall allow the following actions prior to requiring the non-TOE entity to

initiate the identification and authentication process:

• Display the warning banner in accordance with FTA_TAB.1;

• [selection: no other actions, [assignment: list of services, actions performed by

the TSF in response to non-TOE requests]].

FIA_UIA_EXT.1.2 The TSF shall require each user to be successfully identified and authenticated

before allowing any other TSF-mediated actions on behalf of that administrative user.

FIA_UIA_EXT User

identification and authentication

EXT.1

1 2 ... 30 31 32 33 34 35 36 37 38 39 40 ... 60 61

Pas de commentaire

McAfee HARDWARE 1.4 Guide d'installation Page 35